enable by default on initial installs postfix opportunistic TLS encryption for outgoing server emails as per Postfix TLS Support

for existing users they can implement this via SSH command line using the following commands where first command checks current default postfix values which usually is empty and the last command checks the customised postfix config settings after